[refpolicy] Allowing aplication to run bin_t

Nicky726 nicky726 at gmail.com
Thu Aug 20 09:14:41 CDT 2009


Hello,

when writing a policy for Konqueror I came by to an issue 
of allowing it to run an aplication in bin_t (drkonqi).

According to Dominick Grift it is no big deal to allow that
(http://oss.tresys.com/pipermail/refpolicy/2009-
August/001291.html)

So is that considered safe and what would be possible 
security riscs of allowing it?


Thanks for responses,

Ondrej Vadinsky


More information about the refpolicy mailing list